Malicious fake Pokemon GO APK for Android devices
Proofpoint has positioned itself in the market as a company that is designed to protect against inbound threats such as spam and viruses, prevent leaks of confidential information and personal data in all protocols to provide encryption of sensitive email messages and optimize corporate email infrastructure in general. The company offers a complete and integrated solution for email security and data loss prevention (DLP) for businesses, educational institutions, government organizations and ISPs.
The malicious APK was found in the malicious files repository, yet it still is not in the play market. But as the game for iOS- and Android-devices is becoming more popular, experts believe that soon the fake malware still appear in the unofficial app stores.
Everything is designed for "impatient" users who want to download the game from third party sources, hoping to "take possession" play before the date of the release of the original game. Recommended still have patience, and for those that have already downloaded the application from the informal shop, check whether the application is malicious. Checking is not difficult, the malicious version of the game requires elevated privileges: access to a wireless connection and Bluetooth, the ability to track user activity in the browser.
Earlier SecurityLab have discovered a malicious version of the game Pokemon Go, which installs a trojan DroidJack on Android smartphone. As it turned out, the developers of the legitimate version of the game Pokemon Go without the knowledge of the players have full access to e-mail, photos and other confidential information of users, authorized in the game by using your Google Account. Ie when you try to log into the game, Pokemon Go has full access to your Google Account.
According to an official statement of the company Niantic game developers "... excessive rights Pokemon Go received by mistake that will be corrected soon. The game collects only your user ID and e-mail address and does not affect any other data." By the way the company ESET also found in the app store for the Android Google Play malware: screen blocker and two fake antivirus. The number of malicious application downloads has exceeded 50 thousand. Pokemon GO Ultimate Malware application locks the device screen and window system, it is impossible to reset the device. At the same time it works as pornokliker generates traffic to porn sites.